fix(deps): update dependency winston to v3.13.0

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
winston	3.5.0 -> 3.13.0

---

Release Notes

winstonjs/winston (winston)

v3.13.0

Compare Source

• fix(http): allow passing maximumDepth to prevent big object being stringified (#​2425) a237865

v3.12.1

Compare Source

v3.12.0

Compare Source

• missing timestamp format in ready-to-use-pattern example (#​2421) 9e5b407
• bump deps (#​2422) 4a85e6b
• [chore] Run coveralls CI check on Node 20 not 16 (#​2418) e153c68
• Bump @​types/node from 20.8.6 to 20.11.19 (#​2413) 587f40f
• Update README.md (#​2417) 8e99a00
• docs: fix anchor in transports docs (#​2416) 0bde36b
• add winston-transport-vscode to transports docs (#​2411) 8fb5b41
• Bump @​babel/cli from 7.23.0 to 7.23.9 (#​2406) a326743
• Add winston-newrelic-agent-transport to transport documentation (#​2382) cc731ef
• Remove newrelic-winston transport entry. (#​2405) f077f30
• Bump eslint from 8.55.0 to 8.56.0 (#​2397) 3943c41
• Bump the npm_and_yarn group group with 1 update (#​2391) 8260866
• Fix unhandled rejection handling (#​2390) 333b763
• Fix all rimraf usages to the best of my ability; glob is not true by default in rimraf; file archive test only passed every other time using async rimraf, could use further investigation c3f3b5b
• Fix rimraf usage in new test 8f3c653
• Fix rimraf import in test (why didn't this break in PR CI?) f3836aa
• Added functionality to long broken zippedArchive option (#​2337) 02d4267
• Bump async from 3.2.4 to 3.2.5 (#​2378) 069a40d
• Bump @​babel/preset-env from 7.23.2 to 7.23.7 (#​2384) 79282e1
• Bump winston-transport; fix test issue (#​2386) 05788b9
• Bump eslint from 8.51.0 to 8.55.0 (#​2375) a7c2eec
• Bump std-mocks from 1.0.1 to 2.0.0 (#​2361) 85c336e
• Bump actions/setup-node from 3 to 4 (#​2362) 448d11c
• chore(README.md): adds documentation around coloring json formatted logs 91ec069
• Remove nonexistent Logger methods from types c3c3911
• Update dependencies caf2df6

v3.11.0

Compare Source

• Bump split2 from 4.1.0 to 4.2.0 (#​2336) 37f4282
• Bump actions/checkout from 3 to 4 (#​2346) fdcc893
• Bump @​colors/colors packgae to 1.6.0 (#​2353) dcbec34
• Bump rimraf from 3.0.2 to 5.0.5 (#​2357) aaaa4c0
• feat: add guardrails to the instantiation of a Profiler (#​2226) 914b846
• Bump @​types/node from 20.3.1 to 20.4.2 (#​2329) 23cb80c
• Bug Fix: FileTransportOptions type missing lazy:boolean option (#​2334) 1c43f7b

v3.10.0

Compare Source

• Avoid potential github issues - relax engines node requirement in package.json fc9c83d
• Export Logger class (#​2181) eda40ef
• Added Lazy option to file transport (#​2317) f7e7f2f
• Bump eslint from 8.32.0 to 8.44.0 (#​2321) de2e887
• docs(#​2319): Syntax error on README.md (#​2320) fcc69ec
• fix(types): Allow any object to be passed as meta to logger.profile (#​2314) 9d6001a
• Bump @​types/node from 18.11.18 to 20.3.1 (#​2313) 06e3165
• Update supported Node versions and run npm audit fix (#​2315) 61e2f5b
• Bump @​babel/core from 7.20.12 to 7.22.1 (#​2309) 7643ad6

v3.9.0

Compare Source

Functionality changes

• Handle undefined errors in getAllInfo in exception-handler in https://github.com/winstonjs/winston/pull/2208; thanks to new contributor @​eivindrs
• fix: properly allow passing non-array transport in https://github.com/winstonjs/winston/pull/2256; thanks to new contributor @​Tanuel
• fix #​1732 (Http Transport uses JSON format options as request options) in https://github.com/winstonjs/winston/pull/2272; thanks to new contributor @​MoritzLoewenstein (minor version bump per comment on the issue)
• fix: add guard clause to prevent FD leak in https://github.com/winstonjs/winston/pull/2301; thanks to new contributor @​td-tomasz-joniec

Dependency updates by @​dependabot + CI autotesting

• Bump eslint from 8.23.0 to 8.32.0 by @​dependabot in https://github.com/winstonjs/winston/pull/2209, https://github.com/winstonjs/winston/pull/2236, https://github.com/winstonjs/winston/pull/2258, & https://github.com/winstonjs/winston/pull/2271
• Bump @​babel/core from 7.19.0 to 7.20.12 by @​dependabot in https://github.com/winstonjs/winston/pull/2206, https://github.com/winstonjs/winston/pull/2234, https://github.com/winstonjs/winston/pull/2259, & https://github.com/winstonjs/winston/pull/2275
• Bump @​types/node from 18.0.0 to 18.11.18 by @​dependabot in https://github.com/winstonjs/winston/pull/2215, https://github.com/winstonjs/winston/pull/2235, & https://github.com/winstonjs/winston/pull/2264
• Bump @​babel/preset-env from 7.19.0 to 7.20.2 by @​dependabot in https://github.com/winstonjs/winston/pull/2218 & https://github.com/winstonjs/winston/pull/2244
• Bump safe-stable-stringify from 2.3.1 to 2.4.3 by @​dependabot in https://github.com/winstonjs/winston/pull/2217 & https://github.com/winstonjs/winston/pull/2292
• Bump @​babel/cli from 7.18.10 to 7.19.3 by @​dependabot in https://github.com/winstonjs/winston/pull/2216
• Bump json5 from 2.2.1 to 2.2.3 by @​dependabot in https://github.com/winstonjs/winston/pull/2260

Documentation changes

• Fix readme typo in https://github.com/winstonjs/winston/pull/2230; thanks to new contributor @​aretecode
• create new example for ready to use in https://github.com/winstonjs/winston/pull/2240; thanks to new contributor @​myagizmaktav
• minor fixes to publishing.md

Build Infrastructure changes

• GitHub Workflows security hardening in https://github.com/winstonjs/winston/pull/2252; thanks to new contributor @​sashashura

v3.8.2

Compare Source

Patch-level changes

• Add .js to main entry point in package.json in https://github.com/winstonjs/winston/pull/2177; thanks to new contributor @​rumanbsl
• Small grammatical fixes in README.md in https://github.com/winstonjs/winston/pull/2183; thanks to new contributor @​mikebarr24
• Move colors to non-dev dependencies by @​wbt in https://github.com/winstonjs/winston/pull/2190

Dependency updates by @​dependabot + CI autotesting

• Bump @​babel/preset-env from 7.18.2 to 7.19.0 in https://github.com/winstonjs/winston/pull/2189
• Bump @​babel/cli from 7.17.10 to 7.18.10 in https://github.com/winstonjs/winston/pull/2173
• Bump eslint from 8.18.0 to 8.23.0 in https://github.com/winstonjs/winston/pull/2184
• Bump @​babel/core from 7.18.5 to 7.19.0 in https://github.com/winstonjs/winston/pull/2192
• Bump logform from 2.4.1 to 2.4.2 in https://github.com/winstonjs/winston/pull/2191

v3.8.1

Compare Source

Patch-level changes

• Update types to match in-code definitions in https://github.com/winstonjs/winston/pull/2157; thanks to new contributor @​flappyBug

Dependency updates by @​dependabot + CI autotesting

• Bump logform from 2.4.0 to 2.4.1 in https://github.com/winstonjs/winston/pull/2156
• Bump async from 3.2.3 to 3.2.4 in https://github.com/winstonjs/winston/pull/2147

v3.8.0

Compare Source

Added functionality

• Add the stringify replacer option to the HTTP transport by @​domiins in https://github.com/winstonjs/winston/pull/2155

Dependency updates by @​dependabot + CI autotesting

• Bump @​babel/core from 7.17.8 to 7.18.5
• Bump eslint from 8.12.0 to 8.18.0
• Bump @​types/node from 17.0.23 to 18.0.0
• Bump @​babel/preset-env from 7.16.11 to 7.18.2
• Bump @​babel/cli from 7.17.6 to 7.17.10

Updates facilitating repo maintenance & enhancing documentation

• Explicitly note that the Contributing.md file is out of date
• Add instructions for publishing updated version by @​wbt (docs/publishing.md)
• Prettier Config File by @​jeanpierrecarvalho in https://github.com/winstonjs/winston/pull/2092
• Readme update to explain origin of errors for handling (#​2120)
• update documentation for #​2114 by @​zizifn in https://github.com/winstonjs/winston/pull/2138
• enhance message for logs with no transports #​2114 by @​zizifn in https://github.com/winstonjs/winston/pull/2139
• Added a new Community Transport option to the list: Worker Thread based async Console Transport by @​arpad1337 in https://github.com/winstonjs/winston/pull/2140

Thanks especially to new contributors @​zizifn, @​arpad1337, @​domiins, & @​jeanpierrecarvalho!

v3.7.2

Compare Source

This change reverts what should have been the feature-level update in 3.7.0 due to issue #​2103 showing this to be breaking, unintentionally.

v3.7.1

Compare Source

This change includes some minor updates to package-lock.json resolving npm audit failures: one in ansi-regex and another in minimist.

v3.6.0

Compare Source

• [#​2057] Fix potential memory leak by not waiting for process.nextTick before clearing pending callbacks (thanks @​smashah!)
• [#​2071] Update to logform 2.4.0, which includes changes such as new options for JsonOptions and some typo fixes regarding levels
• Various other dependencies are updated, tests are reorganized and cleaned up, etc. (thanks @​wbt, @​Maverick1872, @​fearphage!)

v3.5.1

Compare Source

This release reverts the changes made in PR #​1896 which added stricter typing to the available log levels,
and inadvertently broke use of custom levels with TypeScript (Issue #​2047). Apologies for that!

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.